MedAdmin

78 Athalassa Avenue

2025 Strovolos, Nicosia, Cyprus

Phone: +357 22 684 293

Email: info@domain.com

Privacy Policy

At MedAdmin, we are committed to protecting your personal data and maintaining the highest standards of privacy and security. This Privacy Policy explains how we collect, use, protect, and manage your personal information in compliance with the General Data Protection Regulation (GDPR) and Cyprus data protection laws.

We understand the sensitive nature of healthcare-related information and implement robust security measures to ensure your data remains protected at all times.

Last Updated: September 20, 2025

Data Collection Information

What Personal Data We Collect

  • Contact Information: Name, email address, phone number, postal address
  • Professional Information: Practice details, medical specialization, license information
  • Communication Records: Correspondence, consultation notes, service requests
  • Technical Data: IP address, browser type, device information, website usage patterns
  • Service Data: Information related to our management services and client interactions

How We Collect Data

  • Direct Collection: Through contact forms, service agreements, consultations, and direct communications
  • Website Analytics: Via cookies and tracking technologies when you visit our website
  • Service Delivery: During the provision of our medical office management services
  • Third-Party Integration: From authorized third-party systems used in service delivery

Legal Basis for Processing

  • Contract Performance: Processing necessary for service delivery and contract fulfillment
  • Legitimate Interest: Business operations, service improvement, and client communication
  • Consent: Where you have explicitly agreed to specific data processing activities
  • Legal Obligation: Compliance with healthcare regulations and professional standards

Data Retention Periods

  • Active Client Data: Retained for the duration of our service relationship
  • Communication Records: Kept for 7 years for professional and legal compliance
  • Financial Records: Maintained for 7 years as required by Cyprus tax regulations
  • Website Analytics: Anonymized and retained for 26 months maximum
  • Marketing Data: Deleted upon withdrawal of consent or after 3 years of inactivity

How We Use Your Personal Data

Service Delivery

  • • Providing medical office management services
  • • Processing billing and administrative tasks
  • • Compliance monitoring and reporting
  • • Client communication and support

Business Operations

  • • Account management and billing
  • • Service improvement and development
  • • Quality assurance and monitoring
  • • Internal training and compliance

Communication

  • • Service notifications and updates
  • • Regulatory compliance communications
  • • Technical support and assistance
  • • Professional consultation and advice

Website Analytics

  • • Website performance optimization
  • • User experience improvement
  • • Security monitoring and protection
  • • Content personalization (with consent)

Data Sharing with Third Parties

We may share your data with trusted third parties only in the following circumstances:

  • Service providers who assist in delivering our services (under strict confidentiality agreements)
  • Professional advisors including lawyers, accountants, and compliance consultants
  • Regulatory authorities when required by law or professional obligations
  • With your explicit consent for specific purposes

Data Protection Measures

Technical Safeguards

Encryption

All data transmitted and stored using industry-standard encryption protocols

Secure Storage

Data stored in secure, GDPR-compliant data centers within the EU

Access Controls

Multi-factor authentication and role-based access restrictions

Organizational Measures

Staff Training

Regular privacy and security training for all personnel

Compliance Monitoring

Regular audits and compliance assessments

Incident Response

Comprehensive breach notification and response procedures

Your Data Protection Rights

Right to Access

Request access to your personal data and receive a copy of the information we hold about you.

Right to Rectification

Request correction of inaccurate or incomplete personal data we hold about you.

Right to Erasure

Request deletion of your personal data when it is no longer necessary for the purposes collected.

Right to Data Portability

Receive your personal data in a structured, machine-readable format for transfer to another provider.

Right to Object

Object to processing of your personal data for direct marketing or other purposes based on legitimate interests.

Right to Restriction

Request restriction of processing in certain circumstances while we resolve disputes or verify accuracy.

How to Exercise Your Rights

To exercise any of these rights, please contact us using the information provided at the top of this page. We will respond to your request within 30 days and may require verification of your identity to protect your personal information.

Your Rights and Opt-Out Instructions

You are not required to provide any personal information when using this website. If you prefer not to share your data, you may:

  • Avoid filling out contact forms, account registrations, or any data-submitting features
  • Disable cookies through your browser settings (see our Cookie Policy for more details)
  • Contact us directly to request the deletion of any previously shared personal data
  • Opt out of marketing communications at any time by following unsubscribe links in emails
  • Request restriction or objection to specific data processing activities

We respect your privacy choices. If you would like us to delete your data, please reach out to us at the contact details provided on our Contact page. We will process your request promptly.

For immediate data deletion requests or privacy concerns, you can email us directly at info@domain.com or call +357 22 684 293 during business hours.